CVE search results

481 – 490 of 497 results

Detailed view

Sort by:

CVE-2006-3411

Medium priority

Some fixes available 5 of 6

TLS handshakes in Tor before 0.1.1.20 generate public-private keys based on TLS context rather than the connection, which makes it easier for remote attackers to conduct brute force attacks on the encryption keys.

1 affected package

tor

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
tor	—	—	—	—

CVE-2006-3410

Medium priority

Some fixes available 5 of 6

Tor before 0.1.1.20 creates "internal circuits" primarily consisting of nodes with "useful exit nodes," which allows remote attackers to conduct unspecified statistical attacks.

1 affected package

tor

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
tor	—	—	—	—

CVE-2006-3409

Medium priority

Some fixes available 5 of 6

Integer overflow in Tor before 0.1.1.20 allows remote attackers to execute arbitrary code via crafted large inputs, which result in a buffer overflow when elements are added to smartlists.

1 affected package

tor

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
tor	—	—	—	—

CVE-2006-3408

Medium priority

Some fixes available 5 of 6

Unspecified vulnerability in the directory server (dirserver) in Tor before 0.1.1.20 allows remote attackers to cause an unspecified denial of service via unknown vectors.

1 affected package

tor

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
tor	—	—	—	—

CVE-2006-3407

Medium priority

Some fixes available 5 of 6

Tor before 0.1.1.20 allows remote attackers to spoof log entries or possibly execute shell code via strings with non-printable characters.

1 affected package

tor

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
tor	—	—	—	—

CVE-2006-2458

Medium priority

Not affected

Multiple heap-based buffer overflows in Libextractor 0.5.13 and earlier allow remote attackers to execute arbitrary code via (1) the asf_read_header function in the ASF plugin (plugins/asfextractor.c), and (2) the parse_trak_atom...

1 affected package

libextractor

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
libextractor	—	—	—	—

CVE-2006-0301

Medium priority

Some fixes available 13 of 14

Heap-based buffer overflow in Splash.cc in xpdf, as used in other products such as (1) poppler, (2) kdegraphics, (3) gpdf, (4) pdfkit.framework, and others, allows attackers to cause a denial of service and possibly...

6 affected packages

gpdf, kdegraphics, libextractor, pdftohtml, poppler, xpdf

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gpdf	—	—	—	—
kdegraphics	—	—	—	—
libextractor	—	—	—	—
pdftohtml	—	—	—	—
poppler	—	—	—	—
xpdf	—	—	—	—

CVE-2006-0414

Medium priority

Not affected

Tor before 0.1.1.20 allows remote attackers to identify hidden services via a malicious Tor server that attempts a large number of accesses of the hidden service, which eventually causes a circuit to be built through the malicious server.

1 affected package

tor

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
tor	—	—	—	—

CVE-2005-3191

Medium priority

Fixed

Multiple heap-based buffer overflows in the (1) DCTStream::readProgressiveSOF and (2) DCTStream::readBaselineSOF functions in the DCT stream parsing code (Stream.cc) in xpdf 3.01 and earlier, as used in products such as (a)...

9 affected packages

cupsys, gpdf, kdegraphics, koffice, libextractor...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
cupsys	—	—	—	—
gpdf	—	—	—	—
kdegraphics	—	—	—	—
koffice	—	—	—	—
libextractor	—	—	—	—
pdftohtml	—	—	—	—
poppler	—	—	—	—
tetex-bin	—	—	—	—
xpdf	—	—	—	—

CVE-2005-3863

Medium priority

Some fixes available 18 of 21

Stack-based buffer overflow in kkstrtext.h in ktools library 0.3 and earlier, as used in products such as (1) centericq, (2) orpheus, (3) motor, and (4) groan, allows local users or remote attackers to execute arbitrary code via a...

4 affected packages

centericq, centerim, motor, orpheus

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
centericq	—	—	—	—
centerim	—	—	—	—
motor	—	—	—	—
orpheus	—	—	—	—

Export to JSON

Results by page:

Search CVE reports